Tech Republic Security
MAY 10, 2017
Dell EMC's senior product manager for IoT security, Rohan Kotian, hosted a presentation at Dell EMC World explaining how industrial enterprises can protect their IoT deployments.
Scary Beasts Security
MAY 11, 2017
Overview In my previous post, we explored using an ImageMagick 0day (now a 1day) in the RLE decoder to to determine missing ASLR in both box.com and dropbox.com. In response, both Box and DropBox sensibly limited the available decoders. Both dropped RLE support and lots more. As you may recall from a different but related post , I had challenges working with Box to accurately determine the status of security reports I submitted.
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Privacy and Cybersecurity Law
MAY 12, 2017
On May 11, 2017, the American Bar Association (ABA) issued Formal Opinion 477, making clear that a lawyer may transmit information […].
Tech Republic Security
MAY 10, 2017
At the 2017 Dell EMC World conference, RSA senior director of advanced cyber defense, Peter Tran, walked through examples of real-world IT questions and how they could be answered.
Advertisement
How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.
Tech Republic Security
MAY 9, 2017
It's a shocking discovery that could shake your concept of security to its core: Those trusted to protect your networks are ignoring their own policies. Is something rotten in the state of cybersec?
Tech Republic Security
MAY 8, 2017
Ransomware cost businesses more than $1B last year, and SMBs are particularly susceptible to attack. Here are some tips and best practices for keeping your company safe.
Cyber Security Informer brings together the best content for cyber security professionals from the widest variety of industry thought leaders.
Tech Republic Security
MAY 9, 2017
Two members of Google's Project Zero discovered a serious exploit over the weekend. It's so bad it can take over a system just by sending an email-no opening or reading necessary.
Tech Republic Security
MAY 11, 2017
A new report from Trend Micro indicates that industrial robots are targets for hackers and cybercriminals. Find out the researchers' proposed solution to a more secure robotic ecosystem.
Tech Republic Security
MAY 12, 2017
Hospitals and doctor's surgeries across England are having to cancel non-emergency operations after a major ransomware attack on the National Health Service.
Tech Republic Security
MAY 11, 2017
Several models of the HP EliteBook, ProBook, and other machines may be recording every keystroke you make. Here's how to fix the problem.
Advertiser: Revenera
In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.
Tech Republic Security
MAY 8, 2017
Hear recollections from Bletchley Park veterans on how efforts to crack the Lorenz cipher led to the creation of one of the world's first computers.
Tech Republic Security
MAY 10, 2017
In less than two years, a Dark Web marketplace created by a twenty-something libertarian from Texas had generated more than $1.2 billion by selling drugs, weapons and cyanide online.
Tech Republic Security
MAY 8, 2017
After last week's phishing attack, Google detailed how it protects users, and what business customers can do to avoid similar scams.
Tech Republic Security
MAY 10, 2017
IBM and SecuredTouch are bringing new behavioral biometric authentication based on factors such as typing patterns to enterprise applications.
Advertisement
The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.
Tech Republic Security
MAY 11, 2017
If you want real security, you have to learn not to trust anyone, says ex-PagerDuty expert.
Tech Republic Security
MAY 11, 2017
The May 2017 Android Security Bulletin shatters its previous record of critical vulnerabilities. Get the highlights.
Tech Republic Security
MAY 8, 2017
To operate a FirePOWER Module in a Cisco ASA there are specific steps that must be followed to allow communication with the FireSIGHT management center. This article details that process.
Tech Republic Security
MAY 12, 2017
Today 6.4 billion devices connect to the Internet, and another 50 billion are expected to come online soon. CUJO CEO Leon Kuperman explains how to say safe in a world loaded with IoT threats.
Speaker: Blackberry, OSS Consultants, & Revenera
Software is complex, which makes threats to the software supply chain more real every day. 64% of organizations have been impacted by a software supply chain attack and 60% of data breaches are due to unpatched software vulnerabilities. In the U.S. alone, cyber losses totaled $10.3 billion in 2022. All of these stats beg the question, “Do you know what’s in your software?
Tech Republic Security
MAY 10, 2017
TechRepublic caught up with Nick Bilton, author of American Kingpin, the story of how Ross Ulbricht created an online marketplace for drugs and weapons, generating more than $1.2 billion on the Dark Web.
Tech Republic Security
MAY 8, 2017
The lesser known, but no less important veterans of Bletchley Park's World War II efforts
Privacy and Cybersecurity Law
MAY 10, 2017
On May 8, 2017, the National Institute of Standards and Technology (NIST), through its National Cybersecurity Center of Excellence (NCCoE), […].
Privacy and Cybersecurity Law
MAY 10, 2017
The US Department of Health and Human Services (HHS) announced on April 20 that it plans to launch a cybersecurity initiative modeled […].
Advertisement
Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.
Privacy and Cybersecurity Law
MAY 9, 2017
On May 4, 2017, the US Department of Homeland Security (DHS) submitted a new study to Congress that detailed current and emerging […].
Scary Beasts Security
MAY 10, 2017
Overview Cloud file storage providers such as Box and DropBox will typically thumbnail uploaded images for purposes of showing icons and previews. Predictably, both providers appear to use ImageMagick for thumbnailing. So what happens if we come knocking with the ImageMagick 1-day CESA-2017-0002? CESA-2017-0002 is a vulnerability in the RLE image decoder, where the allocated render canvas memory is not initialized under some conditions.
Tech Republic Security
MAY 12, 2017
US president Donald Trump recently signed an executive order on cybersecurity that mandated federal systems move to the cloud. But, questions remain on the feasibility of that goal.
Tech Republic Security
MAY 11, 2017
On Thursday, US President Donald Trump signed an executive order to enhance cybersecurity across the nation's infrastructure. Here are the top takeaways.
Speaker: Erika R. Bales, Esq.
When we talk about “compliance and security," most companies want to ensure that steps are being taken to protect what they value most – people, data, real or personal property, intellectual property, digital assets, or any other number of other things - and it’s more important than ever that safeguards are in place. Let’s step back and focus on the idea that no matter how complicated the compliance and security regime, it should be able to be distilled down to a checklist.
Tech Republic Security
MAY 11, 2017
Experts aren't sure it's completely feasible, or the ideal move, however.
Privacy and Cybersecurity Law
MAY 12, 2017
On May 11, 2017, President Donald Trump signed a new Executive Order on cybersecurity entitled Strengthening the Cybersecurity of Federal Networks and […].
Expert insights. Personalized for you.
167 
Let's personalize your content